$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CpeV2g7w0-bZmftiId-s1y1M7rI.roa File: CpeV2g7w0-bZmftiId-s1y1M7rI.roa (raw, json) Hash identifier: FVygzYqeA2UA0omG40KsTpMczJgau3snqXSCy8wJsHc= Subject key identifier: 0A:97:95:DA:0E:F0:D3:E6:D9:99:FB:62:21:DF:AC:D7:2D:4C:EE:B2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 155A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CpeV2g7w0-bZmftiId-s1y1M7rI.roa Signing time: Tue 31 Mar 2026 07:59:29 +0000 ROA not before: Tue 31 Mar 2026 07:59:29 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5466 (0x155a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 07:59:29 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=0A9795DA0EF0D3E6D999FB6221DFACD72D4CEEB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b1:70:66:d2:ae:ee:5f:bc:db:99:31:ac:4d: cc:ce:9e:c5:42:54:91:2f:97:75:d3:75:77:48:3d: 36:bd:9a:3a:d8:fc:83:65:d6:00:02:f6:13:84:40: f7:09:51:a9:e7:9b:e2:2d:2f:88:66:5d:40:b7:7b: c6:e8:72:b6:74:78:7e:8a:ce:bc:ce:43:c5:48:b8: 67:5c:16:b2:79:df:29:c5:a3:dd:2f:e8:a4:49:38: bb:04:1b:19:cf:6c:ee:48:a2:f7:76:9e:9f:1b:e5: be:60:3a:d8:12:97:c1:3c:e3:10:bb:1d:cd:8b:30: 69:64:e1:64:d2:c1:44:47:4a:f1:a0:33:78:e6:0a: 6c:cc:3c:cb:b0:68:04:65:3d:05:83:db:78:cf:56: d1:af:c6:45:ec:a0:dd:99:50:a6:92:7a:5d:d3:41: 3d:87:dd:d5:9a:90:88:04:8f:34:db:8f:ca:01:72: 49:8f:67:6c:f9:28:22:b9:35:f7:2e:c9:48:d9:53: 9e:55:64:fb:ca:60:86:11:8f:bc:10:0a:96:d6:2b: eb:7e:b5:da:94:1b:73:d1:71:50:5e:ea:89:7e:e2: bd:f4:96:c8:88:2b:81:2b:21:8c:ad:78:94:26:c9: 05:5c:99:6f:b3:f4:10:30:96:57:7a:f7:b5:70:b3: 44:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:97:95:DA:0E:F0:D3:E6:D9:99:FB:62:21:DF:AC:D7:2D:4C:EE:B2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CpeV2g7w0-bZmftiId-s1y1M7rI.roa sbgp-ipAddrBlock: critical IPv4: 220.159.32.0/20 Signature Algorithm: sha256WithRSAEncryption 89:47:83:65:c1:43:c1:09:56:24:39:3c:9b:bc:b3:c1:0d:80: 30:41:cf:10:49:a4:c0:24:19:06:eb:bd:a3:5b:8d:17:53:2d: 4f:cc:af:9d:25:49:35:18:7f:61:4c:05:0a:7e:a3:f1:33:9f: 7d:cc:d4:81:68:42:cf:02:80:0b:ac:1c:e4:a9:8d:42:c7:d4: 2d:50:64:40:7b:05:f5:e4:5e:ed:0f:b1:21:3f:d4:98:71:fa: 60:ce:9a:90:99:d1:9b:c3:0d:c1:35:cd:f1:f5:14:e9:d4:99: 95:7c:ac:96:75:84:f3:48:de:13:34:24:f9:47:53:0e:fb:4c: 8b:ae:d0:75:64:3f:b7:f5:56:2b:1f:8c:ce:93:22:37:3d:4a: e7:fd:d0:99:bc:87:bc:9e:eb:d5:4d:54:0b:7d:33:ee:fb:38: d7:41:4e:38:6a:82:54:63:25:67:4e:55:d2:3d:3d:9f:0d:9a: ac:5b:0e:f1:5f:0d:e4:53:60:d4:6a:4f:70:1e:9f:d6:cc:f4: b3:4b:9d:bd:d3:0e:c5:d1:fa:1e:f7:8e:d6:fa:18:09:6e:95: 2f:a3:60:57:11:b4:b5:20:df:7c:70:57:a1:ff:f3:2e:d1:8c: a8:eb:dd:7d:70:ae:a2:be:a5:6d:e1:e6:ea:94:86:22:3a:94: 92:dc:34:fb -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFVowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw NzU5MjlaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBBOTc5NURBMEVGMEQz RTZEOTk5RkI2MjIxREZBQ0Q3MkQ0Q0VFQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRsXBm0q7uX7zbmTGsTczOnsVCVJEvl3XTdXdIPTa9mjrY/INl 1gAC9hOEQPcJUannm+ItL4hmXUC3e8bocrZ0eH6KzrzOQ8VIuGdcFrJ53ynFo90v 6KRJOLsEGxnPbO5Iovd2np8b5b5gOtgSl8E84xC7Hc2LMGlk4WTSwURHSvGgM3jm CmzMPMuwaARlPQWD23jPVtGvxkXsoN2ZUKaSel3TQT2H3dWakIgEjzTbj8oBckmP Z2z5KCK5NfcuyUjZU55VZPvKYIYRj7wQCpbWK+t+tdqUG3PRcVBe6ol+4r30lsiI K4ErIYyteJQmyQVcmW+z9BAwlld697Vws0TjAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUCpeV2g7w0+bZmftiId+s1y1M7rIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L0NwZVYyZzd3MC1iWm1mdGlJZC1zMXkxTTdySS5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATcnyAwDQYJKoZIhvcNAQELBQADggEB AIlHg2XBQ8EJViQ5PJu8s8ENgDBBzxBJpMAkGQbrvaNbjRdTLU/Mr50lSTUYf2FM BQp+o/Ezn33M1IFoQs8CgAusHOSpjULH1C1QZEB7BfXkXu0PsSE/1Jhx+mDOmpCZ 0ZvDDcE1zfH1FOnUmZV8rJZ1hPNI3hM0JPlHUw77TIuu0HVkP7f1VisfjM6TIjc9 Suf90Jm8h7ye69VNVAt9M+77ONdBTjhqglRjJWdOVdI9PZ8NmqxbDvFfDeRTYNRq T3Aen9bM9LNLnb3TDsXR+h73jtb6GAlulS+jYFcRtLUg33xwV6H/8y7RjKjr3X1w rqK+pW3h5uqUhiI6lJLcNPs= -----END CERTIFICATE-----Generated at Tue Apr 7 22:24:57 2026 by rpki-client